CVE-2024-56690

Summary

In the Linux kernel, the following vulnerability has been resolved:

crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY

Since commit 8f4f68e788c3 ("crypto: pcrypt - Fix hungtask for PADATA_RESET"), the pcrypt encryption and decryption operations return -EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is generated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns -EAGAIN, the unnecessary panic will occur when panic_on_warn set 1. Fix this issue by calling crypto layer directly without parallelization in that case.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux039fec48e062504f14845124a1a25eb199b2ddc0 < dd8bf8eb5beba1e7c3b11a9a5a58ccbf345a69e6affected
LinuxLinuxc9c1334697301c10e6918d747ed38abfbc0c96e7 < fca8aed12218f96b38e374ff264d78ea1fbd23ccaffected
LinuxLinuxe97bf4ada7dddacd184c3e196bd063b0dc71b41d < a92ccd3618e42333ac6f150ecdac14dca298bc7aaffected
LinuxLinux546c1796ad1ed0d87dab3c4b5156d75819be2316 < 96001f52ae8c70e2c736d3e1e5dc53d5b521e5caaffected
LinuxLinuxc55fc098fd9d2dca475b82d00ffbcaf97879d77e < 92834692a539b5b7f409e467a14667d64713b732affected
LinuxLinux372636debe852913529b1716f44addd94fff2d28 < 5edae7a9a35606017ee6e05911c290acee9fee5aaffected
LinuxLinux8f4f68e788c3a7a696546291258bfa5fdb215523 < a8e0074ffb38c9a5964a221bb998034d016c93a2affected
LinuxLinux8f4f68e788c3a7a696546291258bfa5fdb215523 < 7ddab756f2de5b7b43c122ebebdf37f400fb2b6faffected
LinuxLinux8f4f68e788c3a7a696546291258bfa5fdb215523 < 662f2f13e66d3883b9238b0b96b17886179e60e2affected
LinuxLinuxfb2d3a50a8f29a3c66682bb426144f40e32ab818affected
LinuxLinuxe134f3aba98e6c801a693f540912c2d493718ddfaffected
LinuxLinux4.19.300 < 4.19.325affected
LinuxLinux5.4.262 < 5.4.287affected
LinuxLinux5.10.202 < 5.10.231affected
LinuxLinux5.15.140 < 5.15.174affected
LinuxLinux6.1.64 < 6.1.120affected
LinuxLinux6.6.3 < 6.6.64affected
LinuxLinux4.14.331 < 4.15affected
LinuxLinux6.5.13 < 6.6affected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux4.19.325 <= 4.19.*unaffected
LinuxLinux5.4.287 <= 5.4.*unaffected
LinuxLinux5.10.231 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.64 <= 6.6.*unaffected
LinuxLinux6.11.11 <= 6.11.*unaffected
LinuxLinux6.12.2 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References